php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #56204 cyrus_authenticate() doesn't flag SASL autenticated sessions as authenticated
Submitted: 2004-09-30 11:07 UTC Modified: 2017-01-10 07:44 UTC
From: liamr at umich dot edu Assigned:
Status: Suspended Package: cyrus (PECL)
PHP Version: Irrelevant OS: Linux 2.4.26
Private report: No CVE-ID: None
Have you experienced this issue?
Rate the importance of this bug to you:

 [2004-09-30 11:07 UTC] liamr at umich dot edu
Description:
------------
When using GSSAPI (SASL) authentication w/ cyrus, strace and kerberos credentials indicate that authentication is successful, but the cyrus_authenticate() function reports that authentication fails.

Reproduce code:
---------------
$connection = cyrus_connect( 'cyrus.example.com', 143 );
if ( cyrus_authenticate( $connection, 'GSSAPI', 'imap', 'juser', 0, 1000 )){
    print( "i authenticated<br>" );
} else {
    print( "i couldn't authenticate<br>" );
}


Expected result:
----------------
cyrus_authenticate() should return TRUE

Actual result:
--------------
Strace show's that the user's authenticated..

11200 write(4, "1 AUTHENTICATE GSSAPI\r\n", 23) = 23
11200 select(5, [4], [], NULL, NULL)    = 1 (in [4])
11200 read(4, "* OK cyrus.example.com Cyrus IMAP4 Murder v2.2.8 server ready\r\n", 4096) = 73
11200 select(5, [4], [], NULL, NULL)    = 1 (in [4])
11200 read(4, "+ \r\n", 4096)           = 4
...bunch of kerberos stuff....
11200 read(4, "1 OK Success (privacy protection)\r\n", 4096) = 35

but the value returned by cyrus_authenticate() is FALSE

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2017-01-10 07:44 UTC] kalle@php.net
-Status: Open +Status: Suspended
 [2017-01-10 07:44 UTC] kalle@php.net
Suspending this report as the extension have not had a release in PHP5's lifespan even
 
PHP Copyright © 2001-2020 The PHP Group
All rights reserved.
Last updated: Sat Nov 28 09:01:23 2020 UTC