Bug 1015135
Summary: | Unable to fetch credentials from KEYRING: caches | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Jeff Layton <jlayton> | ||||
Component: | krb5 | Assignee: | Nalin Dahyabhai <nalin> | ||||
Status: | CLOSED RAWHIDE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||
Severity: | unspecified | Docs Contact: | |||||
Priority: | unspecified | ||||||
Version: | rawhide | CC: | dhowells, nalin, nathaniel, sgallagh, ssorce, steved | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | Unspecified | ||||||
OS: | Unspecified | ||||||
Whiteboard: | |||||||
Fixed In Version: | krb5-1.11.3-22.fc21 | Doc Type: | Bug Fix | ||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2013-10-14 21:38:06 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | |||||||
Bug Blocks: | 991187, 1016017, 1018863 | ||||||
Attachments: |
|
Description
Jeff Layton
2013-10-03 13:50:02 UTC
What default_ccache_name setting, specifically, are you using when obtaining creds and attempting to use them? Does the just-built krb5-1.11.3-21.fc21 fare any better? This one works fine, as does leaving this to the default FILE: cache location: default_ccache_name = DIR:/run/user/%{uid}/krb5cc This is the one that doesn't work: default_ccache_name = KEYRING:persistent:%{uid} I'll test out krb5-1.11.3-21.fc21 and get back to you... Yes! krb5-1.11.3-21.fc21 seems to have fixed the issue. Now to test my changes to rpc.gssd... There is one issue with the new packages though. Building nfs-utils against them failed initially: configure:5111: gcc -o conftest -g -O2 conftest.c -ltirpc >&5 /lib64/libkrb5.so.3: undefined reference to `keyctl_get_persistent' ...when I updated keyutils packages to the latest release then this worked. Does this mean that keyutils-libs needs an soname bump or something? The symbol versioning is supposed to help avoid that, by grouping symbols with a library version (such as KEYUTILS_1.4) as they're added, but I think this one was incorrectly added to a version that existed before the symbol was added, so the krb5 package is going to need to bump its hard-wired version requirement again. Thanks for spotting it. Jeff, any news here? I'm all set to mark this one as fixed in krb5-1.11.3-22.fc21 if things still look good from where you are. Sorry, everything seems to be OK now, AFAICT Great to hear. Marking as closed->rawhide, then. |