[Bug 309339] [NEW] kadmind will not listen on IPv6 ports

squiggleslash squiggleslash at yahoo.com
Thu Dec 18 14:22:01 GMT 2008 

Public bug reported:

kadmind, as issued with Ubuntu 8.04 LTS, will not listen on IPv6 ports.
a netstat -l -p -6 will not show it as listening. kdc does not have the
same problem, it works fine.

Looking at the source code, it appears that the version of kadmind being
shipped with Ubuntu 8.04 LTS is not eyepeasixificationalized (!).
krb5-1.6.dfsg.3~beta1/src/kadmin/server/ovsec_kadmd.c defines a
structure, addr, which is the basic sockaddr_in rather than
sockaddr_in6, used to bind to the kerberos-adm port, and the code that
uses it is:

     memset(&addr, 0, sizeof(addr));
     addr.sin_family = AF_INET;
     addr.sin_addr.s_addr = INADDR_ANY;
     addr.sin_port = htons(params.kadmind_port);

     if ((s = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
	  const char *e_txt = krb5_get_error_message (context, ret);
	  krb5_klog_syslog(LOG_ERR, "Cannot create TCP socket: %s",
			   e_txt);
	  fprintf(stderr, "Cannot create TCP socket: %s",
		  e_txt);
	  kadm5_destroy(global_server_handle);
	  krb5_klog_close(context);	  
	  exit(1);
     }

     if ((schpw = socket(AF_INET, SOCK_DGRAM, 0)) < 0) {
	 const char *e_txt = krb5_get_error_message (context, ret);
	 krb5_klog_syslog(LOG_ERR,
			  "cannot create simple chpw socket: %s",
			  e_txt);
	 fprintf(stderr, "Cannot create simple chpw socket: %s",
		 e_txt);
	 kadm5_destroy(global_server_handle);
	 krb5_klog_close(context);
	 exit(1);
     }

There is no IPv6 code in the thing at all. I'm assuming there's no
elaborate include file somewhere that redefines sockaddr_in and AF_INET
to sockaddr_in6 and AF_INET6 respectively (and I don't know if such a
thing would work anyway, I'm reading conflicting documentation on
whether that would result in an IPv6-only app.)

Without this fixed, the remote admin daemon is essentially not useful on
a network that's primarily IPv6.

** Affects: krb5 (Ubuntu)
     Importance: Undecided
         Status: New

-- 
kadmind will not listen on IPv6 ports
https://bugs.launchpad.net/bugs/309339
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to krb5 in ubuntu.

More information about the Ubuntu-server-bugs mailing list