Bug 4967 - Smart card auth failed: assertion at services/service_agent.cc:234
Summary: Smart card auth failed: assertion at services/service_agent.cc:234
Status: CLOSED FIXED
Alias: None
Product: ThinLinc
Classification: Unclassified
Component: Client (show other bugs)
Version: 4.1.1
Hardware: PC Unknown
: P2 Normal
Target Milestone: 4.2.0
Assignee: Karl Mikaelsson
URL:
Keywords: hean01_tester, prosaic
Depends on:
Blocks:
 
Reported: 2014-01-23 16:21 CET by Karl Mikaelsson
Modified: 2014-04-11 07:42 CEST (History)
1 user (show)

See Also:
Acceptance Criteria:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Karl Mikaelsson cendio 2014-01-23 16:21:45 CET 
We got a report from a customer that they had a few users who could not log in using certain smart cards using Windows or Linux clients. The Windows client reported an assertion failure in tlclient, while the Linux client restarted - it is unknown if it hit the same assertion at this point.
Comment 5 Karl Mikaelsson cendio 2014-02-05 14:22:35 CET 
Fixed in r28378.

Still not sure why we're getting data that's bigger than the buffer though.

Tester should, uh... not going to lie, this bug will be difficult to test properly. Make sure everything smart card auth still works fine, I guess. Try lots of different cards and SSH servers.
Comment 6 Karl Mikaelsson cendio 2014-02-05 16:10:07 CET 
After Pierre examined the data given to the signRequest function, it was found to be in accordance to the SSH protocol. What caused this problem was probably a combination of too small buffer and long usernames/subjectNames.
Comment 7 Henrik Andersson cendio 2014-04-11 07:42:36 CEST 
Tested using client build 4319 and server 4318.

Initialized a aventra card with a certificate were the dn was 1505 bytes long. Client and server handled this without problesm also did passwdaliases.

Works as expected...
Note You need to log in before you can comment on or make changes to this bug.