[11916] in Kerberos-V5-bugs
[krbdev.mit.edu #6875] kdb5_util mkey operations hit assertion when
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Sat Feb 26 12:56:51 2011
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Greg Hudson via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6875@krbdev.mit.edu>
Message-ID: <rt-6875-33852.18.9578100801148@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6875'":;"'AdminCc of krbdev.mit.edu Ticket #6875'":;@MIT.EDU
Date: Sat, 26 Feb 2011 12:56:44 -0500 (EST)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
At a surface level, the bug is that in the current design, ulog_map()
must be invoked by callers of kdb_put_principal(), and the kdb5_util mkey
commands don't do that.
I am concerned about this comment in the ulog_map() call from kdb5_util
load: "We don't want to take out the ulog out from underneath kadmind so
we reinit the header log." Are there iprop log contention issues with
modifying the KDB from multiple processes at once? (If so, we have a
problem with kadmin.local.) I need to check in with Ken on this.
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
