DSFW: Memory leak in libgss causing named to crash

  • 7015135
  • 04-Jun-2014
  • 04-Jun-2014


Novell Open Enterprise Server 11 SP2 (OES11SP2)
Novell Open Enterprise Server 11 SP1 (OES11SP1)
Domain Services for Windows


Memory leak in libgss causing named to crash

670 clients
Clients are login in 60 minutes 
200 Windows clients are login
Novell CIFS Servers are access
In about a few hour, novell-named cores


Fixed in March 2014 Maintenance Patch


The leak is in KRB5 package

During Secure dynamic updates, TSIG key is exchanged between DNS server and workstations.  DNS calls libgass library for secure update.  Allocated memory is not freed in libgss once the update is completed. The leak is observed in mech_spnego.so library

Additional Information

Valgrind log
==9348== at 0x4C27DD0: malloc (vg_replace_malloc.c:270)
==9348== by 0x4E361DA: create_spnego_ctx (spnego_mech.c:314)
==9348== by 0x4E387E9: spnego_gss_accept_sec_context (spnego_mech.c:1266)
==9348== by 0x5041CA7: gss_accept_sec_context (g_accept_sec_context.c:199)
==9348== by 0x549DAF: dst_gssapi_acceptctx (gssapictx.c:225)
==9348== by 0x516778: process_gsstkey (tkey.c:446)
==9348== by 0x51721A: dns_tkey_processquery (tkey.c:730)
==9348== by 0x4200AF: ns_query_start (query.c:3710)
==9348== by 0x40B724: client_request (client.c:1715)
==9348== by 0x57A5D6: dispatch (task.c:869)
==9348== by 0x57A86A: run (task.c:1012)
==9348== by 0x65027B5: start_thread (in /lib64/libpthread-2.11.3.so)
==9348== by 0x67F1D6C: clone (in /lib64/libc-2.11.3.so)