git://git.whamcloud.com - fs/lustre-release.git/commit

author	Bruno Faccini <bfaccini@nvidia.com>
	Tue, 13 Feb 2024 11:14:40 +0000 (12:14 +0100)
committer	Oleg Drokin <green@whamcloud.com>
	Fri, 23 Feb 2024 07:06:31 +0000 (07:06 +0000)
commit	f2705c4ec5598ca244bbb08673a1cfefd7342812
tree	bb4485f7ee1240417725b530d3df5dbc83a83742	tree \| snapshot
parent	e77435295a390216bd9f7f832f679cdc01aaa1d7	commit \| diff

LU-17535 gss: fix lsvcgssd crash in krb lib

This patch fixes some logic around the need to call
gss_delete_sec_context() or not vs kerberos implementations.

snd->ctx address instead of value should be passed to
serialize_context_for_kernel()/serialize_krb5_ctx() to
allow each implementation to clear it with GSS_C_NO_CONTEXT
if it has been destroyed internally, and cases where not
can also be handled in handle_krb() now.

Test-Parameters: trivial
Test-Parameters: kerberos=true testlist=sanity-krb5
Test-Parameters: testgroup=review-dne-selinux-ssk-part-2
Signed-off-by: Bruno Faccini <bfaccini@nvidia.com>
Change-Id: I752712168a2c0f0a5a7a496b851d4cddbb7e4236
Reviewed-on: https://review.whamcloud.com/c/fs/lustre-release/+/54023
Reviewed-by: Sebastien Buisson <sbuisson@ddn.com>
Reviewed-by: Aurelien Degremont <adegremont@nvidia.com>
Reviewed-by: Oleg Drokin <green@whamcloud.com>
Tested-by: jenkins <devops@whamcloud.com>
Tested-by: Maloo <maloo@whamcloud.com>

lustre/utils/gss/context.c		diff \| blob \| history
lustre/utils/gss/context.h		diff \| blob \| history
lustre/utils/gss/context_heimdal.c		diff \| blob \| history
lustre/utils/gss/context_lucid.c		diff \| blob \| history
lustre/utils/gss/context_mit.c		diff \| blob \| history
lustre/utils/gss/context_spkm3.c		diff \| blob \| history
lustre/utils/gss/lgss_keyring.c		diff \| blob \| history
lustre/utils/gss/svcgssd_proc.c		diff \| blob \| history