Merge ~sergiodj/ubuntu/+source/gssproxy:bug1788459-segfault-nfs-krb-focal into ubuntu/+source/gssproxy:ubuntu/focal-devel
Status: | Approved |
---|---|
Approved by: | Sergio Durigan Junior |
Approved revision: | b8abcaf3c6c0e870fb35346a5d3b3ad236c12ab7 |
Proposed branch: | ~sergiodj/ubuntu/+source/gssproxy:bug1788459-segfault-nfs-krb-focal |
Merge into: | ubuntu/+source/gssproxy:ubuntu/focal-devel |
Diff against target: |
85 lines (+53/-1) 4 files modified
debian/changelog (+8/-0) debian/control (+2/-1) debian/patches/0001-Fix-handling-of-selinux-context-when-NULL.patch (+42/-0) debian/patches/series (+1/-0) |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Bryce Harrington (community) | Approve | ||
Canonical Server Core Reviewers | Pending | ||
Review via email: mp+404982@code.staging.launchpad.net |
Description of the change
This is the backport of the upstream fix for bug #1788459. This MP addresses the Focal bug.
The problem happens when using gssproxy along with NFS and krb5 for authentication. In this scenario, a segmentation fault will happen when gssproxy interacts with libselinux and passes a NULL context to it.
As I wrote in the bug, arguably this is also a bug with libselinux because it naively attempts to dereference a pointer that is coming from one of its clients without checking if it's NULL first. However, it is also a bug with gssproxy and as such should be fixed.
There is an upstream bug here: https:/
And the corresponding patch here: https:/
This will be an SRU for Focal and Hirsute. The SRU template should provide more info if needed. There is also a PPA with the proposed packages here:
https:/
The package doesn't have dep8 tests, but I tested the fix by running the "Test Case" section of the SRU template.
There was an error fetching revisions from git servers. Please try again in a few minutes. If the problem persists, contact Launchpad support.
Same patch, and same review as for hirsute. LGTM, +1