128 – PAM with ssh authentication and pam_krb5 doesn't work properly

Bug 128 - PAM with ssh authentication and pam_krb5 doesn't work properly

Summary: PAM with ssh authentication and pam_krb5 doesn't work properly

Status:	CLOSED DUPLICATE of bug 127

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	sshd (show other bugs)
Version:	-current
Hardware:	UltraSPARC Solaris

Importance:	P2 normal
Assignee:	OpenSSH Bugzilla mailing list

URL:
Keywords:

Depends on:
Blocks:

Reported:	2002-02-28 05:38 AEDT by Bob Smith
Modified:	2004-04-14 12:24 AEST (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Bob Smith 2002-02-28 05:38:12 AEDT

when authenticating against pam_krb5 before pam_unix the user can not login, 
sshd logs the error "input_userauth_info_response_pam: no authentication 
context".

i don't know why this is failing, this patch fixes the problem by removing the 
check for an authentication context.

users can now login with the pam.conf entry:

sshd auth sufficient /usr/lib/security/$ISA/pam_krb5.so.1
sshd auth required /usr/lib/security/$ISA/pam_unix.so.1 try_first_pass


*** auth2-pam.c-        Tue Feb 26 15:30:14 2002
--- auth2-pam.c Tue Feb 26 15:31:26 2002
***************
*** 134,141 ****
--- 134,143 ----
       unsigned int nresp = 0, rlen = 0, i = 0;
       char *resp;

+ /*
       if (authctxt == NULL)
               fatal("input_userauth_info_response_pam: no authentication 
context");
+ */

       nresp = packet_get_int();       /* Number of responses. */
       debug("got %d responses", nresp);

Comment 1 Damien Miller 2003-01-07 17:58:27 AEDT

Bug #127 can be the catchall "pam_krb5 is busted" bug

*** This bug has been marked as a duplicate of 127 ***

Comment 2 Damien Miller 2004-04-14 12:24:18 AEST

Mass change of RESOLVED bugs to CLOSED