[2376] in Kerberos-V5-bugs
pending/134: krb5-beta7: Bad failure mode parsing kdc.conf
daemon@ATHENA.MIT.EDU (John Gardiner Myers)
Thu Oct 24 13:01:05 1996
Resent-From: gnats@rt-11.MIT.EDU (GNATS Management)
Resent-To: gnats-admin@rt-11.MIT.EDU
Resent-Reply-To: krb5-bugs@MIT.EDU, John Gardiner Myers <jgm@CMU.EDU>
Date: Thu, 24 Oct 1996 12:58:24 -0400 (EDT)
From: John Gardiner Myers <jgm@CMU.EDU>
To: krb5-bugs@MIT.EDU
>Number: 134
>Category: pending
>Synopsis: krb5-beta7: Bad failure mode parsing kdc.conf
>Confidential: yes
>Severity: serious
>Priority: medium
>Responsible: gnats-admin
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Thu Oct e 13:00:01 EDT 1996
>Last-Modified:
>Originator:
>Organization:
>Release:
>Environment:
>Description:
>How-To-Repeat:
>Fix:
>Audit-Trail:
>Unformatted:
I had extra garbage in my kdc.conf file:
------------------------------begin kdc.conf file
[kdcdefaults]
kdc_ports = 88,750
[realms]
PORTOLACOMM.COM = {
profile = /etc/krb5.conf
database_name = /var/krb5kdc/principal
admin_database_name = /var/krb5kdc/principal.kadm5
admin_database_lockfile =
/var/krb5kdc/principal.kadm5.lock
admin_keytab = /var/krb5kdc/kadm5.keytab
acl_file = /var/krb5kdc/kadm5.acl
dict_file = /var/krb5kdc/kadm5.dict
key_stash_file = /var/krb5kdc/.k5.PORTOLACOMM.COM
kadmind_port = 749
max_life = 10h 0m 0s
max_renewable_life = 7d 0h 0m 0s
master_key_type = des-cbc-crc
supported_enctypes = des-cbc-crc:normal des-cbc-crc:v4
}
cd /var
mkdir
------------------------------ end kdc.conf file
(with the mkdir line not ending with a LF)
Trying to run krb5kdc, the behavior was not a printed error message as
one would expect. Instead krb5kdc silently ignored all the settings
for the PORTOLACOMM.COM domain, instead picking the compiled-in
defaults.
I spent quite a few minutes running gdb on krb5kdc trying to track
this down. The code really needs to have better error dectection and
diagnostics for stuff like this.
--
_.John Gardiner Myers Internet: jgm+@CMU.EDU
LoseNet: ...!seismo!ihnp4!wiscvm.wisc.edu!give!up
