[626] in Kerberos-V5-bugs
krb5kdc, replay cache, and Solaris 2.3
daemon@ATHENA.MIT.EDU (John DiMarco)
Fri Aug 12 17:18:04 1994
From: John DiMarco <jdd@cdf.toronto.edu>
To: krb5-bugs@MIT.EDU
Date: Fri, 12 Aug 1994 17:17:42 -0400
Version: krb5-beta4.2
OS: Solaris 2.3
Hardware: Sun SPARCstation
Compiler: gcc 2.5.8
Compiled everything up, set up database, /etc/services.
Starting up krb5kdc returns the following error:
krb5kdc: Permission denied in replay cache code while expunging replay cache 'dfl:'
Running krb5kdc under truss shows the following:
(initial mmaps)
close(3) = 0
close(4) = 0
brk(0x00071E68) = 0
brk(0x00073E68) = 0
open("/dev/conslog", O_WRONLY, 036000000000) = 3
fcntl(3, F_SETFD, 0x00000001) = 0
open("/opt/krb5/krb.conf", O_RDONLY, 0666) = 4
fstat(4, 0xEFFFF508) = 0
brk(0x00073E68) = 0
brk(0x00075E68) = 0
ioctl(4, TCGETA, 0xEFFFF494) Err#25 ENOTTY
read(4, " C D F . T O R O N T O .".., 8192) = 539
lseek(4, 0xFFFFFDF5, 1) = 16
close(4) = 0
stat("/var/tmp/krb5kdc_rcache", 0xEFFFF950) = 0
getuid() = 0 [0]
open("/var/tmp/krb5kdc_rcache", O_RDWR, 0600) = 4
read(4, "0501", 2) = 2
fstat(468656, 0xEFFFF958) Err#9 EBADF
read(4, "\0\001 ,", 4) = 4
lseek(4, 0, 1) = 6
read(4, 0xEFFFF9DC, 4) = 0
lseek(4, 6, 0) = 6
close(4) = 0
stat("/var/tmp/", 0xEFFFF8C8) = 0
getuid() = 0 [0]
krb5kdcwrite(2, " k r b 5 k d c", 7) = 7
: write(2, " : ", 2) = 2
Permission denied in replay cache codewrite(2, " P e r m i s s i o n d".., 38)= 38
...
Note the stat of "/var/tmp/", followed by the getuid(). This looks like the
traces of a krb5_rc_io_open(d,fn) with fn="". The actual cause of fn being
"" needs to be tracked down.
Regards,
John
--
John DiMarco <jdd@cdf.toronto.edu> Office: EA201B
Computing Disciplines Facility Systems Manager Phone: 416-978-1928
University of Toronto Fax: 416-978-1931
http://www.cdf.toronto.edu/personal/jdd/jdd.html
